USB Type-C Authentication Program launched to protect against non-compliant chargers and malicious devices
- USB Type-C Authentication Program confirms the authenticity of various types of USB devices, cables, storage drives, power sources, and chargers.
- The Authentication program is aimed to protect the host systems against non-compliant USB chargers and malicious USB devices.
USB Implementers Forum (USB-IF) announced on 02, January 2019, the launch of its USB Type-C Authentication Program, which aims to provide host systems the opportunity to protect against non-compliant USB chargers and mitigate risks from maliciously embedded hardware or software in USB devices.
USB-IF's Authentication program with the support of cryptographic mechanisms will confirm the authenticity of various types of USB devices, cables, storage drives, power sources, and chargers.
Authentication Program
USB-IF is working alongside DigiCert, who manages the PKI and certificate authority services for the USB Type-C Authentication Program. Using certificates, companies can protect their products against both non-compliant chargers and malicious USB devices.
“USB-IF is excited to launch the USB Type-C Authentication Program, providing OEMs with the flexibility to implement a security framework that best fits their specific product requirements,” Jeff Ravencraft, USB-IF President and COO said, SecurityWeek reported.
The authentication process takes place immediately after a connection is made to ensure that no inappropriate power or data gets exchanged.
Features of the USB Type-C Authentication Program
- A standard protocol for authentication of USB Type-C chargers, devices, cables, and power sources.
- The Authentication program provides support for authenticating over either USB data bus or USB power delivery communications channels.
- It relies on 128-bit security for all cryptographic method.
- It provides specification references for cryptographic methods with regard to certificate format, digital signing, hash, and random number generation.
“As the USB Type-C ecosystem continues to grow, companies can further provide the security that consumers have come to expect from certified USB devices,” Jeff Ravencraft, USB-IF President and COO concluded.